Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/6rj1xkac2MbEmFC4LiDBBnCnU5Y.roa
File: 6rj1xkac2MbEmFC4LiDBBnCnU5Y.roa (raw, json)
Hash identifier: sVQ5+VeD6bqhTkI99QDpPP0Lxi2PK41ovbW2cdNl6Dk=
Subject key identifier: EA:B8:F5:C6:46:9C:D8:C6:C4:98:50:B8:2E:20:C1:06:70:A7:53:96
Certificate issuer: /CN=bd7d8178cec5cd376548a9049117f469c0a7431c
Certificate serial: 371C8D1A
Authority key identifier: BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/6rj1xkac2MbEmFC4LiDBBnCnU5Y.roa
Signing time: Sat 01 Jan 2022 14:07:47 +0000
ROA not before: Sat 01 Jan 2022 14:07:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43937
IP address blocks: 213.187.255.0/24 maxlen: 24
213.187.254.0/24 maxlen: 24
213.187.224.0/24 maxlen: 24
213.187.225.0/24 maxlen: 24
213.187.226.0/24 maxlen: 24
213.187.230.0/24 maxlen: 24
213.187.231.0/24 maxlen: 24
213.187.232.0/24 maxlen: 24
213.187.233.0/24 maxlen: 24
213.187.227.0/24 maxlen: 24
213.187.228.0/24 maxlen: 24
213.187.228.0/22 maxlen: 24
213.187.229.0/24 maxlen: 24
213.187.237.0/24 maxlen: 24
213.187.238.0/24 maxlen: 24
213.187.239.0/24 maxlen: 24
213.187.235.0/24 maxlen: 24
213.187.236.0/24 maxlen: 24
213.187.251.0/24 maxlen: 24
213.187.252.0/24 maxlen: 24
213.187.253.0/24 maxlen: 24
213.187.248.0/21 maxlen: 21
213.187.248.0/24 maxlen: 24
213.187.249.0/24 maxlen: 24
213.187.252.0/23 maxlen: 23
213.187.250.0/24 maxlen: 24
185.6.179.0/24 maxlen: 24
185.6.176.0/24 maxlen: 24
185.6.177.0/24 maxlen: 24
185.6.178.0/24 maxlen: 24
178.255.10.0/24 maxlen: 24
178.255.11.0/24 maxlen: 24
178.255.8.0/24 maxlen: 24
178.255.9.0/24 maxlen: 24
178.255.13.0/24 maxlen: 24
178.255.14.0/24 maxlen: 24
178.255.15.0/24 maxlen: 24
178.255.12.0/24 maxlen: 24
78.24.53.0/24 maxlen: 24
78.24.54.0/24 maxlen: 24
78.24.55.0/24 maxlen: 24
78.24.52.0/24 maxlen: 24
78.24.49.0/24 maxlen: 24
78.24.50.0/24 maxlen: 24
78.24.51.0/24 maxlen: 24
78.24.48.0/24 maxlen: 24
94.190.144.0/24 maxlen: 24
94.190.145.0/24 maxlen: 24
94.190.151.0/24 maxlen: 24
94.190.152.0/24 maxlen: 24
94.190.147.0/24 maxlen: 24
94.190.148.0/24 maxlen: 24
94.190.149.0/24 maxlen: 24
94.190.150.0/24 maxlen: 24
94.190.146.0/24 maxlen: 24
82.116.128.0/24 maxlen: 24
82.116.132.0/24 maxlen: 24
82.116.131.0/24 maxlen: 24
94.190.158.0/24 maxlen: 24
94.190.159.0/24 maxlen: 24
94.190.154.0/24 maxlen: 24
94.190.153.0/24 maxlen: 24
94.190.155.0/24 maxlen: 24
82.116.129.0/24 maxlen: 24
82.116.130.0/24 maxlen: 24
94.190.156.0/24 maxlen: 24
94.190.157.0/24 maxlen: 24
82.116.138.0/24 maxlen: 24
82.116.139.0/24 maxlen: 24
82.116.134.0/24 maxlen: 24
82.116.135.0/24 maxlen: 24
82.116.136.0/24 maxlen: 24
82.116.137.0/24 maxlen: 24
82.116.133.0/24 maxlen: 24
82.116.145.0/24 maxlen: 24
82.116.141.0/24 maxlen: 24
82.116.142.0/24 maxlen: 24
82.116.143.0/24 maxlen: 24
82.116.144.0/24 maxlen: 24
82.116.140.0/24 maxlen: 24
82.116.146.0/24 maxlen: 24
82.116.147.0/24 maxlen: 24
82.116.152.0/24 maxlen: 24
82.116.148.0/24 maxlen: 24
82.116.149.0/24 maxlen: 24
82.116.150.0/24 maxlen: 24
82.116.151.0/24 maxlen: 24
82.116.159.0/24 maxlen: 24
82.116.155.0/24 maxlen: 24
82.116.156.0/24 maxlen: 24
82.116.157.0/24 maxlen: 24
82.116.158.0/24 maxlen: 24
82.116.153.0/24 maxlen: 24
82.116.154.0/24 maxlen: 24
185.249.222.0/24 maxlen: 24
185.249.223.0/24 maxlen: 24
2a02:7980:105::/48 maxlen: 48
2a02:7980::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 924618010 (0x371c8d1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd7d8178cec5cd376548a9049117f469c0a7431c
Validity
Not Before: Jan 1 14:07:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eab8f5c6469cd8c6c49850b82e20c10670a75396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:99:43:60:1a:5f:12:53:dd:ec:ce:fd:a4:f3:
3b:92:6f:f7:16:12:38:5f:8b:96:5c:64:91:fc:bd:
27:cf:ca:f5:52:da:0f:c2:31:c9:96:7e:45:8b:32:
3e:ea:99:2d:a2:87:cd:fe:f9:bf:53:22:97:5b:38:
e9:7e:ac:f4:0e:45:5f:25:bb:84:7d:cf:25:9c:7a:
ed:ba:8a:ec:62:83:19:25:d1:d5:d3:6e:fd:8e:71:
c2:54:20:d8:cb:4f:64:d2:2c:e4:79:87:63:38:cd:
13:27:65:d2:76:31:5c:a5:fc:c7:6c:67:88:80:4a:
a3:ea:4c:13:07:65:62:c5:9f:41:28:c3:4a:8c:c3:
82:7d:cc:60:94:70:d6:24:39:59:a7:08:03:92:a5:
5c:82:f5:2b:5f:93:4c:7a:fb:73:da:31:6f:07:78:
23:fb:d6:c0:3d:b4:05:20:09:40:82:af:36:c7:68:
84:d0:45:7a:21:d6:0d:4d:5d:2a:ae:52:5c:8a:22:
a9:e0:f7:6b:34:eb:98:3c:d6:5b:96:8e:d0:66:11:
74:dc:dd:9d:d5:5e:95:1e:99:2e:e8:b5:5e:8c:da:
e3:43:7e:ba:ce:76:6d:ec:98:aa:a1:28:0c:4e:10:
00:69:1f:16:ab:7f:04:b8:38:c8:97:c6:ef:5a:0e:
bc:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:B8:F5:C6:46:9C:D8:C6:C4:98:50:B8:2E:20:C1:06:70:A7:53:96
X509v3 Authority Key Identifier:
keyid:BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/6rj1xkac2MbEmFC4LiDBBnCnU5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.48.0/21
82.116.128.0/19
94.190.144.0/20
178.255.8.0/21
185.6.176.0/22
185.249.222.0/23
213.187.224.0-213.187.233.255
213.187.235.0-213.187.239.255
213.187.248.0/21
IPv6:
2a02:7980::/32
Signature Algorithm: sha256WithRSAEncryption
5b:6c:91:a8:17:c8:f3:0c:8d:ff:8d:49:11:57:64:bc:07:a2:
f8:60:3b:df:d1:ed:f5:10:cd:22:3b:3a:8e:3d:ae:2c:02:cf:
16:64:00:5e:8e:a6:58:a7:26:f0:bf:7d:d1:72:f7:80:bb:64:
a4:94:a0:f9:b0:4e:73:ed:b8:89:25:0f:26:52:99:ed:08:41:
4c:c3:96:49:6f:3e:62:b9:7d:65:97:5d:76:a1:ad:ce:2d:75:
6f:09:86:e2:17:7a:59:66:46:a8:8c:b7:13:ce:b0:16:54:75:
59:02:84:b5:0b:b4:5e:64:92:f0:68:5e:ca:e6:f6:10:00:1f:
17:87:48:4e:8e:21:e9:b5:4f:89:a5:43:dd:7a:d4:a4:ba:ef:
44:9c:60:3b:8b:65:f4:cb:01:43:59:95:e0:8a:65:85:79:61:
7c:90:9d:e7:ac:fd:67:c8:5c:aa:a4:41:89:ed:97:96:13:b0:
64:d7:ab:08:27:08:68:fa:bf:23:1e:0f:4b:f9:a5:12:0c:f2:
1c:0b:da:de:ea:a8:bb:4d:de:32:5f:49:f4:f5:57:bc:2e:d2:
9f:65:ec:d1:d7:95:0e:89:0f:8f:e6:60:b8:cc:22:70:1d:64:
25:f8:01:73:07:79:44:c5:bd:14:7c:0d:45:78:9e:30:84:b2:
c1:12:fd:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:36:55 2025 by rpki-client